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TRANSFER OF SECURITY DATA BETWEEN TWO MEMORIES 
TECHNICAL FIELD OF THE INVENTION 

5 The present Invention relates to the field of safe transfer of security data from one memory 
to another In an electronic data processing environment. In particular the present 
Invention relates to a method of transferring data from a non-volatile memory to a working 
memory of an electronic data processing device, such an electronic data processing device 
as well as to a device for blocking write attempts. 



10 



DESCRIPTION OF RELATED ART 



The cellular phones of today have more and more different functions and applications In 
them. One such function is the possibility to make economical transactions, in performing 
15 transactions there is normally used security data In the form of private encryption keys. 
The storage of these keys has to be safe and safeguarded from manipulation. 

in relation to cellular phones these keys have up till now been stored in so-called NOR 
flash memories. These known memories are of the type XIP (execute In place), which 

20 means that the keys are not moved from the memory. It is today possible to block writing 
of the position of such keys on such a memory using hardware solutions. Such solutions 
monitor program execution and data access on the system bus Inside the phone. Software 
code that Is not part of the authenticated firmware of the device is prevented from 
accessing the keys. These solutions assume that at least the firmware and possibly the 

25 keys are located In an XIP memory, so that address patterns on the bus are fixed for any 
given execution sequence. 

Such NOR flash memories are however relatively expensive, why there is a trend to 
replace them with so-called NAND flash memories, which are cheaper. These memories are 
30 however not of the XIP type, and In order to use the content stored on them, the content 
has to be moved or copied to a working memory of the phone. 

There Is therefore a need for being able to protect such security data from manipulation 
when it is being moved from the NAND flash memory to the working memory. 



35 



It (s furthermore often desirable to provide such a protection independently of the central 
processing of the unit, since otherwise other units such as a debugging unit, which is often 
a part of the phone for development reasons, can influence such security information. 
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SUMMARY OF THE INVENTION 



The present Invention Is thus directed towards solving the problem of protecting the 
security data from manipulation, when It Is moved from a non-volatile memory to a 
5 working memory as well as after such relocation. 

This is achieved by copying data from the non-volatile memory to the working memory, 
which data includes security data to be write-protected, activating blocking of the security 
data in the working memory, monitoring all communication with the working memory, and 
10 blocking all write attempts to the copied security data stored in the working memory, 
where activating blocking,, monitoring communication and blocking write attempts are 
performed independently of the central processing unit of the data processing device, such 
that the central processing unit cannot manipulate the security data. 



15 One object of the present invention is to provide a method that protects security data from 
manipulation when the data is moved from a non-volatile memory to a working memory as 
well as after such relocation. 

According to a first aspect of the present invention, the object is achieved by a method of 
20 transferring data from a non-volatile memory to a working memory of an electronic data 
processing device, comprising the steps of: 

copying data from the non-volatile memory to the working memory, which data 
includes security data to be write-protected, 
activating a blacking of the security data in the working memory, 
25 monitoring all communication with the working memory, and 

blocking all write attempts to the copied security data stored in the working 
memory, 

wherein at least the steps of activating a blocking, monitoring communication 
and blocking write attempts are performed Independently of the central 
30 processing unit of the data processing dsvioa, such that the central processing 
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data from the non-volatile memory to the working memory independently of the central 
processing unit of Che data processing device and copying any further data under the 
control of the central processing unit of the device. 

5 A fourth aspect of the present Invention Is directed towards a method including the 
features of the third aspect, wherein the area of the security data In the non-volatile 
memory and the area for storage of the security data In the working memory are pre- 
defined and wherein the step of activating a blocking of positions of the working memory is 
triggered by the copying being made to the pre-defined area In the working memory and 
10 the blocking Is activated for said area. 

A fifth aspect of the present Invention is directed towards a method including the features 
of the first aspect, wherein the step of copying comprises copying all data from the non- 
volatile memory to the working memory under the control of the central processing unit of 
15 the device. 

A sixth aspect of the present invention Is directed towards a method Including the features 
of the fifth aspect, wherein the area of the security data in the non-volatile memory is pre- 
defined and wherein the step of activating a blocking is triggered by a first detection of 
20 copying of security data from the pre-defined area In the non-volatile memory to an area 
of the working memory and the blocking is activated for that area of the working memory. 

A seventh aspect of the present invention Is directed towards a method including the 
features of the first aspect, wherein the step of blocking is achieved by changing the 
25 destination address of th? data transferred to the working memory. 

An eighth aspect of the present Invention Is directed towards a method including the 
features of the first aspect, further comprising the steps of disconnecting a debugging unit 
at least when copying the security data to the working memory and reconnecting the 
30 debugging unit when the blocking has been activated. 

Another object of the present invention Is to provide a device for blocking write attempts 
to security data that protects security data from manipulation when the data is moved 
from a non-volatile memory to a. working memory as well as after such relocation. 

35 

According to a ninth aspect of the present invention, this object is achieved by a device for 
blocking write attempts to security data transferred from a non-volatile memory to a 
working memory in an electronic data processing environment that includes a central 
processing unit and comprising; 



EnPf.zeit:02/09/2003 11:20 



FmD"f.nr.:81R P.flU 



PROG NR. 590 02.09 /03 11:10 ID:STRGn&GULLIKSSON STHU1 FAX: +46 3, 54543349 SIDfl 1 



10 



15 



20 



a monitoring unit arranged to: 

activate a blocking op the security data in the working memory upon copying of 

the security data from the non-volatile memory to the working memory, 

monitor all communication with the working memory, and 

block all write attempts to the copied security data stored in the working 

memory, 

all performed independently of the centrai processing unit of the data 
processing environment, such that the central processing unit cannot 
manipulate the security data. 

A tenth aspect of the present invention Is directed towards a method including the features 
of the ninth aspect, wherein the area of the security data in the non-volatile memory is 
pre-defined and pre-stored in the device and used in relation at least to activating a 
blocking. 

An eleventh aspect of the present Invention is directed towards a device including the 
features of the ninth aspect, further comprising a copy control unit arranged to copy the 
security data from the non-volatile memory to the working memory also independently of 
the centra! processing unit of the data processing environment. 



A twelfth aspect of the present invention is directed towards a device including the 
features of the eleventh aspect, where the area of the security data in the non-volatile 
memory and the area for storage of the security data In the working memory are pre- 
defined and pre-stored in the device and the monitoring unit when activating a blocking is 
25 triggered by the copying being made to the pre-defined area in the working memory and 
activates a blocking of that area. 

A thirteenth aspect of the present invention is directed towards a device including the 
features of the ninth aspect, where the area of the security data in the non-volatile 
30 memory is pre-defined and pre-stored In the device and the monitoring unit when 

activating s blacking Is triggered by 3 first detection of craving of security fjat 5 from the 
pra-dsnnsc 3 eras In Che ficn-veletite rrr=mory sn -srss Q?thv v^r.^ng-rr^rnDrs 
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A flfteench aspect of the present invention is directed towards a device including the 
features of the ninth aspect, wherein the monitoring unit is arranged to disconnect a 
debugging unit of the electronic data processing environment at least when the security 
data is copied to the working memory and to reconnect the debugging unit when the 
5 blocking has been activated. 

A sixteenth aspect of the present invention Is directed towards a device including the 
features of the ninth aspect, wherein it Is Implemented In hardware. 

10 Yet another object is to provide an electronic data processing device that protects security 
data from manipulation when the data Is moved from a non-volatile memory to a working 
memory as well as after such relocation. 

According to a seventeenth aspect of the present Invention, this object is achieved by an 
15 electronic data processing device comprising: 

a non-volatile memory comprising data including security data to be wrfte- 

protected, 

a working memory, 

a central processing unit arranged to control copying of at least some data 
20 from the non-volatile memory to the working memory, and 

a device for blocking write attempts to security data transferred from the 
non-volatile memory to the working memory and comprising a monitoring 
unit arranged to; 

activate a blocking of the security data in the working memory upon 
25 copying of the security data from the non-volatile memory to the 

working memory, 

monitor all communication with the working memory, and 
block all write attempts to the copied security data stored In the 
working memory, 

30 all performed independently of the central processing unit, such that 

the central processing unit cannot manipulate the security data. 

An eighteenth aspect of the present Invention is directed towards a device, including the 
features of the seventeenth aspect, wherein the area of the security data In the non- 
35 volatile memory Is pre-defined and pre-stored in the device for blocking write attempts 
and used in relation at least to activating a blocking. 

A nineteenth aspect of the present invention is directed towards a device including the 
features of the seventeenth aspect, wherein the device for blocking write attempts further 
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comprises a copy control unit arranged to copy the security data from the non-volatile 
memory to the working memory independently of the central processing unit and the 
central processing unit is arranged to control the copying of further data from the non- 
volatile memory to the working memory. 

5 

A twentieth aspect of the present Invention Is directed towards a device Including the 
features of the nineteenth aspect, where the area of the security data In the non-volatile 
memory and the area for storage of the security data in the working memory are pre- 
defined and pre-stored in the device for blocking write attempts and the monitoring unit 
10 when activating a blocking is triggered by the copying being made to the pre-defined area 
in the working memory and activates a blocking of that area. 

A twenty-first aspect of the present invention Is directed towards a device including the 
features of the seventeenth aspect, wherein the central processing unit is arranged to 
15 control the copying of all data from the non-volatile memory to the working memory. 

A twenty-second aspect of the present invention is directed towards a device including the 
features of the twenty-first aspect, where the area of the security data in the non-volatile 
memory is pre-defined and pre-stored in the device for blocking write attempts and the 
20 monitoring unit when activating a blocking is triggered by a first detection of copying of 
security data from the pre-defined area In the non-volatile memory to an area of the 
working memory and activating a blocking for that area of the working memory. 

A twenty-third aspect of the present invention Is directed towards a device including the 
25 features of the seventeenth aspect, wherein the monitoring unit is arranged to block write 
attempts by changing the destination address of data transferred to the working memory. 

A twenty-fourth aspect of the present invention is directed towards a device including the 
features of the seventeenth aspect, further comprising a debugging unit and wherein the 
30 monitoring unit is arranged to disconnect the debugging unit at least when the security 

data. Is coplsd to the working memory and to reconnect the debugging ur.jr when m= 
blecJdno fi ~-pr acavstsd. 
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A twenty-sixth aspect of the present invention is directed towards a device Including the 
features of the seventeenth aspect, wherein the device is a portable communication 
device* 

5 A twenty-seventh aspect of the present Invention is directed towards a device Including the 
features of the twenty-sixth aspect, wherein the device is a cellular phone. 

The invention has the following advantages. It enables the storage of security data In a 
working memory without risking tampering of this data, which is guaranteed by the 
10 Independence from the central processing unit. Another advantage is that cheaper 

memories therefore can be used Instead of the memories that would otherwise be needed. 
It also allows the possibility to keep a debugging unit In the electronic data processing 
device for debugging software loaded in the device without having to compromise the 
safety of the security data. 

15 

It should be emphasized that the term "comprises/comprising" when used in this 
specification is taken to specify the presence of stated features, integers, steps or 
components, but does not preclude the presence or addition of one or more other features, 
Integers, steps, components or groups thereof. 

20 

BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention will now be described in more detail in relation to the enclosed 
drawings, in which: 

25 

fig. 1 shows a block schematic of an electronic processing device including a device for 
blocking write attempts both according to a first embodiment of the invention, 
fig. 2 shows a flow chart of a method according to the first embodiment of the invention, 
fig. 3 shows a block schematic of an electronic processing device including a device for 
30 blocking write attempts both according to a second embodiment of the invention, and 
fig. 4 shows a flow chart of a method according to the second embodiment of the 
invention. 

DETAILED DESCRIPTION OF EMBODIMENTS 

35 

An electronic data processing device 10 according to a first embodiment of the Invention is 
shown in a block schematic in fig. 1. The device is preferably provided in a portable 
communication device and In the preferred embodiment the device is provided in a cellular 
phone and then a so-called smartphone. A cellular phone is just one example of where the 
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invention can be implemented. The Invention can for instance also be used in a FDA 
(personal digital assistant), a palm top computer, a lap top computer and In a PC (personal 
Computer). The device where the electronic data processing device according to the 
invention is implemented should however have functionality for secure transferring and 
5 transactions. 

The device 10 includes a communication bus 12 to which are connected a central 
processing unit 14, a device for blocking write attempts 16, a ROM memory 18 and an 
Interface 20 towards external memories. The device 16 includes a monitoring unit 28, the 

10 functioning of which will be described In more detail layer. To the Interface 20 are 

connected a working memory 22, which preferably is a volatile so-called SD RAM memory 
and a non-volatile NAND flash memory 24. A debugging unit 26 is also connected to the 
bus 12. The NAND flash memory Includes an area defined by memory addresses Al and 
A2, which area comprises security data 30 In the form of private cryptographic keys. The 

15 working memory 22 includes a corresponding area defined by memory addresses Bl and 
B2, which is to receive the private security keys. 

The main functioning of the electronic data processing device ls f as is well known to the 
man skilled In the art, to execute software stored in different memories under the control 

20 of the central processing unit. Some such software can be some type of transactions 
software originally stored In the NAND flash memory. The information on a NAND flash 
memory cannot be used directly, but this information has to be transferred to a working 
memory before being used. If this is done In a straight-forward way, without taking 
necessary precautions, this data can be tampered with, which is highly undesirable if the 

25 data includes private keys to be used in for instance transactions involving money. One 
such source of tampering can be the debugging unit, which is connected to the device in 
order to debug faulty programs. This debugging unit often has contact with other dev|ces r 
like computers and servers and can take control of the central processing unit of the 
electronic processing device and is therefore a potential safety risk for the data that is 

30 transferred. 



8 d^vica snd metftari sc^nalng to = nrsc smbedlmenc of ths invention t^'ce^ csr= of 
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blocking write attempts 16 disconnects or turns off the debugging unit 26, step 32, in 
order to safeguard that the security keys In the flash memory 24 will not be tampered with 
after copying. This turning off is thus done independently from the central processing unit 
14. Thereafter the monitoring unit 28 monitors the traffic on the bus 12, step 34. Traffic 
5 on the bus is sent using source and destination addresses. As mentioned before the 
copying of data Is performed under the control of the central processing unit 14, step 36. 
This unit 14 therefore controls the ROM memory 18, which includes transferal codes for 
transferring all the data in the flash memory 24 to the working memory 22. Here the data 
from the flash memory 24 can be stored in any position in the working memory 22. The 

10 content of the flash memory 24 is transferred sequentially. The monitoring unit 28 is set to 
look out for the memory addresses Al and A2 defining the area of the security keys 30 in 
the flash memory on the data bus 12. This information Is pre-set and pre-stored In the 
monitoring unit 28 and therefore provided beforehand in the monitoring unit 28. When the 
first of the information is transferred from address Al to address Bl in the working 

15 memory, the monitoring unit begins activating blocking through storing the destination 
address Bl. It then waits until the last address A2 of the area is transferred to destination 
address B2, which it also stores. The monitoring unit then locks the data area Bl - B2 of 
the working memory 22, since then the keys 30 have been copied. In this way blocking of 
the address area defined by addresses Bl and B2 was activated by the monitoring unit 

20 upon the first detection of data transfer from the area defined by addresses Al and A2, 
step 38. The monitoring unit then reconnects or turns on the debugging unit 26, step 40, 
so that it can function yet again. After this the monitoring unit 28 continues monitoring all 
the traffic on the bus, step 42, and blocks all attempts to write to the area defined by 
addresses Bl and B2 r step 44. This blocking Is normally done through controlling the 

25 interface 20 to change address whenever a write command to any address in the area is 
encountered. Steps 38 - 44 are all performed by the monitoring unit Independently of the 
central processing unit 14. The device 16 including the monitoring unit 28 is provided in 
the form of hardware in the form of suitably selected and connected logic circuits. This 
makes the device 16 work fast. Another advantage is that the functioning of It cannot be 

30 changed, which makes illegal tampering of the device hard, so that write-protection of the 
moved security keys can be guaranteed. 

Now a second embodiment of the Invention will be described with reference being made to 
fig. 3 and 4, Pig. 3 shows a device 10 that is similar to the device in fig. 1. There is only 
35 one difference here and that is that the device for blocking write attempts 16 also includes 
a copy control unit 46. This unit 46, which In this embodiment is a DMA (Direct Memory 
Access) unit, takes care of the transfer of the keys in the area Al - A2 In the flash memory 
24 to the area Bl - B2 of the working memory 22. As in the first embodiment, the 
monitoring unit 28 in device 16 here disconnects or turns off the debugging unit 26, step 
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48, in order to safeguard that the private security keys 3D In the flash memory 24 will not 
be tampered with after copying. Thereafter the copy control unit 46 copies the keys 30 In 
the area defined by addresses Al and A2 in the flash memory 24 to the area defined by 
addresses Bl and B2 in the working memory 22 f step 50. In this case both the addresses 
5 Al - A2 and addresses Bl - B2 are pre-defined and pre-stored in the copy control unit 46 
and therefore provided beforehand. The copy control unit 46 here also transfer this content 
sequentially. When the copy control unit 46 has copied these addresses it notifies the 
monitoring unit 28, which then goes on and activates blocking of the area defined by 
addresses Bl and B2, step 52. The monitoring unit 28 can also have these addresses Bl 

10 and B2 pre-stored or receive them from the copy control unit 46 upon signalling of finished 
copying. The monitoring unit 28 then reconnects or turns on the debugging unit 26, step 
54, so that it can function yet again. Thereafter the monitoring unit 28 starts monitoring all 
the traffic on the data bus, step 56. The central processing unit 14 transfers the rest of the 
content from the flash memory 24 to the working memory 22, step 58, which is done in 

15 the same way as was described in relation to the first embodiment. The monitoring unit 28 
then blocks ail attempts to write to the area defined by addresses Bl and B2, step 60. This 
blocking Is done in the same way as was described in the first embodiment. Steps 48 - 56 
and 60 are all performed by the monitoring unit independently of the central processing 
unit. The device for blocking write attempts 16 including the copy control unit 46 and the 

20 monitoring unit 28 is also here provided In the form of hardware for making illegal 

tampering of the device hard, so that write-protection of the moved security keys can be 
guaranteed. 

When the electronic data processing device Is turned off, the working memory Is emptied, 
25 which means that the data in the flash memory has to be transferred each time the device 
is turned on again or rebooted. 



The present Invention has many advantages. It enables the storage of the private security 
keys in a working memory without risking tampering of these keys, which is guaranteed by 
30" the independence of the central processing units. Another advantage is that cheaper 

m^moriss therefore can b= used instead of *te memories fchaS would otherwise bs needed. 
I'c wllovv-s the possibility to It==? z feEnagi n y unit in tfts dsvis= for dsbuGcSna sufca^ 
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can also Include other data than the keys and any software associated with the keys. The 
working memory can of course also include other types of Information. It is possible that 
the flash memory, In the first described embodiment can have the addresses of the defined 
area in the working memory stored at a specific location, which location the ROM memory 
5 then can access for finding out the destination address of the security keys. The invention 
Is furthermore not limited to private security keys, but can be applied on any data that 
needs to be write-protected. In view of this the present invention Is therefore only to be 
limited by the following claims. 
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CLAIMS 



1. Method of transferring data from a non-volatile memory (24) to a working 
memory (22) of an electronic data processing device (10), comprising the steps 

5 of: 

copying data from the non-volatile memory to the working memory, which data 
includes security data (30) to be write-protected, (steps 36; 50 f 58), 
activating a blocking of the security data in the working memory, (step 38; 52), 
monitoring all communication with the working memory, (steps 34, 42; 56), 
10 and 

blocking all write attempts to the copied security data stored in the working 
memory, (steps 44; 60), 

wherein at least the steps of activating a blocking, monitoring communication 
and blocking write attempts are performed independently of the central 
15 processing unit (14) of the data processing device, such that the central 

processing unit cannot manipulate the security data. 

2. Method according to claim l, wherein the area (ai, A2) of the security data in 
the non-volatile memory Is pre-defined and pre-stored in a device for blocking 

20 write attempts (16) and used at least in relation to activating a blocking. 

3. Method according to claim 1 or 2, wherein the step of copying data comprises 
copying only the security data from the non-volatile memory to the working 
memory independently of the central processing unit of the data processing 

25 device (step 50) and copying any further data under the control of the central 

processing unit of the device (step 58). 

4. Method according to claim 3, wherein the area (Al, A2) of the security data in 
the non-volatile memory and the area (Bl, B2) for storage of the security data 

30 in the working memory are pre-defined and wherein the step of activating a 

blacking of positions of ?h£ working memory is triggered. by the espying beincs ^ 
mads to the pr^-dsfin^iarea in chs. working memory - n d th~ blodnrrsrfe 
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6. Method according to claim 5, wherein the area (Al, A2) of the security data in 
the non-volatile memory is pre-defined and wherein the step of activating a 
blocking is triggered by a first detection of copying of security data from the 
pre-defined area In the non-volatile memory to an area (Bl, 32) of the working 
memory and the blocking Is activated for that area of the working memory. 

7. Method according to any previous claim, wherein the step of blocking is 
achieved by changing the destination address of the data transferred to the 
working memory. 

8. Method according to any previous claim, further comprising the steps of 
disconnecting a debugging unit (step 32; 48) at least when copying the security 
data to the working memory and reconnecting the debugging unit (step 40; 54) 
when the blocking has been activated. 



9. Device (16) for blocking write attempts to security data (30) transferred from a 
non-volatile memory (24) to a working memory (22) in an electronic data 
processing environment (10) that Includes a central processing unit (14) and 
comprising a monitoring unit (28) arranged to: 

20 activate a blocking of the security data In the working memory upon copying of 

the security data from the non-volatile memory to the working memory, 
monitor all communication with the working memory, and 
block all write attempts to the copied security data stored In the working 
memory, 

25 all performed independently of the central processing unit of the data 

processing environment such that the central processing unit cannot 
manipulate the security data. 

10. Device according to claim 9, wherein the area (Al, A2) of the security data in 
30 the non-volatile memory Is pre-defined and pre-stored in the device and used 

in relation at least to activating a blocking. 

11, Device according to claim 9 or 10, further comprising a copy control unit (46) 
arranged to copy the security data from the non-volatile memory to the 

35 working memory also independently of the central processing unit of the data 

processing environment, 

12, Device according to claim 11, where the area (Al, A2) of the security data In 
the non-volatile memory and the area (Bl, B2) for storage of the security data 
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in the working memory are pre-defined and pre-stored in the device and the 
monitoring unit when activating a blocking is triggered by the copying being 
made to the pre-defined area in the working memory and activates a blocking 
of that area. 

S 

13, Device according to claim 9 or 10, where the area of the security data (Al, A2) 
in the non-volatile memory Is pre-defined and pre-stored Jn the device and the 
monitoring unit when activating a blocking is triggered by a first detection of 
copying of security data from the pre-defined area in the non-volatile memory 
10 to an area (Bl, B2) of the working memory and activating a blocking for that 

area of the working memory. 



14. Device according to any of claims 9 - 13, wherein the monitoring unit is 
arranged to block write attempts by changing the destination address of data 
15 transferred to the working memory. 



15. Device according to any of claims 9 - 14, wherein the monitoring unit is 
arranged to disconnect a debugging unit (26) of the electronic data processing 
environment at least when the security data is copied to the working memory 

20 and to reconnect the debugging unit when the blocking has been activated. 

16. Device according to any of claims 9 - 15, wherein It Is Implemented in 
hardware. 



25 17. Electronic data processing device (10) comprising: 

a non-volatile memory (24) comprising data including security data (30) to 

be write-protected, 

a working memory (22)/ 

a central processing unit (14) arranged to control copying of at least some 
30 data from the non-volatile memory to the working memory, and 

a device for blocking write attempts (15) to sacunty data, transferred from 
the non-vo!stils rnamcn/ fcs ch£ woricina rcsmosy and comprising a 
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all performed Independently of the central processing unit, such that 
the central processing unit cannot manipulate the security data. 

18. Electronic data processing device according to claim 17, wherein the area (AX, 
A2) of the security data in the non-volatile memory is pre-defined and pre- 
stored in the device for blocking write attempts and used in relation at least to 
activating a blocking. 

19. Electronic data processing device according to claim 17 or 18, wherein the 
device for blocking write attempts further comprises a copy control unit (46) 
arranged to copy the security data from the non-volatile memory to the 
working memory independently of the central processing unit and the central 
processing unit Is arranged to control the copying of further data from the non- 
volatile memory to the working memory. 

20. Electronic data processing device according to claim 19, where the area (AX, 
A2) of the security data in the non-volatile memory and the area (Bl, 82) for 
storage of the security data in the working memory are pre-defined and pre- 
stored in the device for blocking write attempts and the monitoring unit when 
activating q blocking Is triggered by the copying being made to the pre-defined 
area in the working memory and activates a blocking of that area. 

21. Electronic data processing device according to claim 17 or 18, wherein the 
central processing unit is arranged to control the copying of all data from the 
non-volatile memory to the working memory. 

22. Electronic data processing device according to claim 21, where the area (Al, 
A2) of the security data In the non-volatile memory is pre-defined and pre- 
stored In the device for blocking write attempts and the monitoring unit when 
activating a blocking is triggered by a first detection of copying of security data 
from the pre-defined area In the non-volatile memory to an area (Bl, B2) of 
the working memory and activating a blocking for that area of the working 
memory. 

23. Electronic data processing device according to any of claims 17 - 22, wherein 
the monitoring unit is arranged to block write attempts by changing the 
destination address of data transferred to the working memory. 
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24. Electronic data processing device according to any of claims 17 - 23, further 
comprising a debugging unit (26) and wherein the monitoring unit Is arranged 
to disconnect the debugging unit at least when the security data Is copied to 
the working memory and to reconnect the debugging unit when the blocking 

5 has been activated. 

25. Electronic data processing device according to any of claims 17 - 24 r wherein 
the device for blocking write attempts is implemented in hardware. 

10 26. Electronic data processing device according to any of claims 17 - 25 f wherein 

the device is a portable communication device. 



15 



27. Electronic data processing device according to claim 26, wherein the device Is a 
cellular phone. 
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ABSTRACT 

The present invention Is directed towards a method of transferring data from a non-volatile 
memory (24) to a working memory (22) of an electronic data processing device (10), such 
S an electronic data processing device as well as to a device for blocking write attempts 
(16). For this reason a monitoring unit (28) activates a blocking of the security data (30) 
In the working memory (22) upon copying of the security data from the non-volatile 
memory (24) to the working memory, monitors all communication with the working 
memory, and blocks all write attempts to the copied security data stored in the working 
10 memory, all performed independently of the central processing unit (14) of the data 
processing environment, such that the central processing unit cannot manipulate the 
security data. 

Fig. 1 
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TURN OFF DEBUGGING UNIT FROM MONITORING UNIT 
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MONITOR TRAFFIC ON DATA BUS FROM MONITORING UNIT 
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COPY DATA FROM FLASH MEMORY TO WORKING 
MEMORY UNDER CONTROL OF CPU 
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ACTIVATE BLOCKING OF AREA Bl - B2 WHEN 
MONITORING UNIT DETECTS SECURITY DATA TRANSFER 
FROM AREA Al - A2 TO AREA Bl - B2 



TURN OH D^B ll GG TW G iiwrrrenwa ^nmrrnc Tran \ imtt 

X 



PROG NR. 590 02.09. '03 11:14 ID:STRi3T1&GULLIKSS0lvl S7HJ1 FfiX:+46 8 54549349 



SIDft 




FIG. 3 



48 
50 . 

52 



TURN OFF DEBUGGING UNIT FROM MONITORING UNIT 



COPY SECURITY DATA FROM AREA Al - A2 TO 
AREA Bl - B2 USING DATA COPY CONTROL UNIT 
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ACTIVATE BLOCKING OF AREA Bl - B2 FROM 
MONITORING UNIT 
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MONITOR TRAFFIC ON DATA BUS FROM MONITORING UNIT 
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COPY REST OF DATA FROM FLASH MEMORY TO 
WORKING MEMORY UNDER CONTROL OF CPU 



\ BLOCK ALL WRITE ATTEMPTS TO AREA Bl - B2 
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